Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/wAr9l8DzVKdFcGqJkREOXFfd8DY.roa
File: wAr9l8DzVKdFcGqJkREOXFfd8DY.roa (raw, json)
Hash identifier: AAS4PbDTUp+jC26WDPZZglrjZWZp2Ro7JqBDUjDLopE=
Subject key identifier: C0:0A:FD:97:C0:F3:54:A7:45:70:6A:89:91:11:0E:5C:57:DD:F0:36
Certificate issuer: /CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Certificate serial: 0192344C9C639AD46E4187A4AC5A9C0A3184
Authority key identifier: 6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/wAr9l8DzVKdFcGqJkREOXFfd8DY.roa
Signing time: Fri 27 Sep 2024 16:24:48 +0000
ROA not before: Fri 27 Sep 2024 16:24:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8772
IP address blocks: 62.205.128.0/19 maxlen: 20
62.205.132.0/24 maxlen: 24
62.205.134.0/24 maxlen: 24
62.205.144.0/20 maxlen: 20
62.205.152.0/24 maxlen: 24
62.205.159.0/24 maxlen: 24
94.131.0.0/23 maxlen: 23
94.131.0.0/24 maxlen: 24
94.131.4.0/24 maxlen: 24
94.131.6.0/24 maxlen: 24
94.131.7.0/24 maxlen: 24
94.131.124.0/24 maxlen: 24
94.131.125.0/24 maxlen: 24
94.131.127.0/24 maxlen: 24
95.164.12.0/23 maxlen: 23
95.164.15.0/24 maxlen: 24
95.164.20.0/24 maxlen: 24
95.164.40.0/22 maxlen: 22
95.164.49.0/24 maxlen: 24
95.164.50.0/24 maxlen: 24
95.164.52.0/22 maxlen: 22
95.164.56.0/22 maxlen: 22
95.164.72.0/22 maxlen: 22
95.164.76.0/24 maxlen: 24
95.164.80.0/22 maxlen: 22
95.164.90.0/24 maxlen: 24
95.164.120.0/24 maxlen: 24
95.164.121.0/24 maxlen: 24
95.164.122.0/24 maxlen: 24
95.164.123.0/24 maxlen: 24
95.164.170.0/23 maxlen: 23
95.164.172.0/22 maxlen: 22
95.164.248.0/23 maxlen: 23
95.164.251.0/24 maxlen: 24
195.214.208.0/21 maxlen: 21
195.214.208.0/22 maxlen: 22
195.214.210.0/24 maxlen: 24
195.214.212.0/22 maxlen: 22
2a01:d0::/32 maxlen: 32
2a01:d0:4::/48 maxlen: 48
2a01:d0:a::/48 maxlen: 48
2a01:d0:28::/48 maxlen: 48
2a01:d0:3b::/48 maxlen: 48
2a01:d0:43::/48 maxlen: 48
2a01:d0:105::/48 maxlen: 48
2a01:d0:303::/48 maxlen: 48
2a01:d0:305::/48 maxlen: 48
2a01:d0:308::/48 maxlen: 48
2a01:d0:317::/48 maxlen: 48
2a01:d0:31d::/48 maxlen: 48
2a01:d0:333::/48 maxlen: 48
2a01:d0:962::/48 maxlen: 48
2a01:d0:1657::/48 maxlen: 48
2a01:d0:7fff::/48 maxlen: 48
2a01:d0:8000::/33 maxlen: 33
2a01:d0:ffff::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:34:4c:9c:63:9a:d4:6e:41:87:a4:ac:5a:9c:0a:31:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Validity
Not Before: Sep 27 16:24:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c00afd97c0f354a745706a8991110e5c57ddf036
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:b9:c7:a7:57:92:67:e0:20:a6:22:38:74:63:
9e:72:44:b2:c4:2e:10:53:57:dc:44:fd:b4:45:77:
1a:8d:b3:6f:fc:4c:70:9e:00:71:35:2f:6e:38:a1:
e4:a5:61:c0:95:1a:82:15:2b:ec:5c:53:37:ad:02:
19:36:00:3e:e8:38:20:a5:20:86:cf:38:75:a4:3d:
da:8f:0c:8a:34:42:56:57:5f:8f:a2:3f:28:2b:d9:
02:5c:3b:cf:f0:de:ed:05:d2:56:49:15:7a:ea:4c:
f3:0a:07:93:5f:85:68:48:01:f6:a9:d0:15:8e:89:
c6:ae:cc:08:7d:01:3c:c5:b9:74:75:d3:1b:cb:67:
f0:e3:ea:58:18:a7:4c:5b:92:f0:f8:ed:5f:5f:4a:
11:5f:3f:90:00:76:f5:d7:a9:01:93:eb:50:f1:e0:
7d:d8:3a:f5:03:23:16:6b:86:89:80:02:20:36:51:
23:95:d3:a7:0a:c0:78:df:33:28:6c:b9:46:38:31:
31:24:11:85:0d:2d:8a:90:63:ee:42:72:5f:0e:31:
ea:47:a0:db:79:11:e7:4b:a2:61:91:6b:06:27:e9:
29:64:28:47:46:e4:52:ea:7f:b8:75:03:5a:3e:60:
95:a2:a1:13:6e:28:f9:f7:10:f9:2a:a9:3b:b7:98:
16:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:0A:FD:97:C0:F3:54:A7:45:70:6A:89:91:11:0E:5C:57:DD:F0:36
X509v3 Authority Key Identifier:
keyid:6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/wAr9l8DzVKdFcGqJkREOXFfd8DY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/bXQ-1j6GjvUPbYTAADqDSD_GKgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.205.128.0/19
94.131.0.0/23
94.131.4.0/24
94.131.6.0/23
94.131.124.0/23
94.131.127.0/24
95.164.12.0/23
95.164.15.0/24
95.164.20.0/24
95.164.40.0/22
95.164.49.0-95.164.50.255
95.164.52.0-95.164.59.255
95.164.72.0-95.164.76.255
95.164.80.0/22
95.164.90.0/24
95.164.120.0/22
95.164.170.0-95.164.175.255
95.164.248.0/23
95.164.251.0/24
195.214.208.0/21
IPv6:
2a01:d0::/32
Signature Algorithm: sha256WithRSAEncryption
20:67:c4:ef:cd:6f:fb:6c:c5:84:6f:a7:0d:1f:7c:a5:29:4e:
6f:8f:4a:12:4b:71:ec:98:16:3e:f1:d6:c2:d8:67:32:97:64:
67:cc:6e:5e:2c:5f:2a:7b:8c:c1:80:83:25:8a:11:35:23:04:
12:7d:5f:43:b9:3b:52:aa:9a:8e:85:8b:93:bc:e8:eb:b5:00:
28:d4:af:b0:1f:7b:77:16:0a:31:64:71:ae:e7:a6:80:48:18:
d5:b4:dc:70:b0:7d:db:5c:60:67:a1:d1:25:58:8f:2f:e6:d0:
a6:2d:b0:c8:ac:1f:79:5e:11:b9:c2:b3:15:80:d8:6c:04:ed:
ae:d2:94:4b:b4:4a:06:07:85:94:3f:30:bc:c9:74:66:09:59:
92:9e:00:a5:3d:39:78:4c:7b:b2:46:e6:ab:78:34:60:52:d9:
3c:13:ec:d4:b6:10:0b:8d:35:41:05:58:f7:11:8c:41:e2:41:
85:70:a8:0f:b8:62:5a:4f:c9:82:09:2b:73:91:f1:9f:41:ca:
92:f6:e9:cb:fb:7a:08:d6:d2:75:bc:dc:60:1d:e5:64:19:ae:
10:5a:11:81:5f:25:e5:da:6d:76:a0:c0:1e:3e:cf:13:4a:77:
1b:b1:ed:d9:16:bb:3e:9b:f3:e0:00:52:ad:19:0a:e6:2f:6a:
83:e2:4f:7d
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgISAZI0TJxjmtRuQYekrFqcCjGEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkNzQzZWQ2M2U4NjhlZjUwZjZkODRjMDAwM2E4MzQ4M2Zj
NjJhMDMwHhcNMjQwOTI3MTYyNDQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMDBhZmQ5N2MwZjM1NGE3NDU3MDZhODk5MTExMGU1YzU3ZGRmMDM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApLnHp1eSZ+AgpiI4dGOeckSyxC4Q
U1fcRP20RXcajbNv/ExwngBxNS9uOKHkpWHAlRqCFSvsXFM3rQIZNgA+6DggpSCG
zzh1pD3ajwyKNEJWV1+Poj8oK9kCXDvP8N7tBdJWSRV66kzzCgeTX4VoSAH2qdAV
jonGrswIfQE8xbl0ddMby2fw4+pYGKdMW5Lw+O1fX0oRXz+QAHb116kBk+tQ8eB9
2Dr1AyMWa4aJgAIgNlEjldOnCsB43zMobLlGODExJBGFDS2KkGPuQnJfDjHqR6Db
eRHnS6JhkWsGJ+kpZChHRuRS6n+4dQNaPmCVoqETbij59xD5Kqk7t5gWgQIDAQAB
o4ICrzCCAqswHQYDVR0OBBYEFMAK/ZfA81SnRXBqiZERDlxX3fA2MB8GA1UdIwQY
MBaAFG10PtY+ho71D22EwAA6g0g/xioDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYlhRLTFqNkdqdlVQYllUQUFEcURTRF9HS2dNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC9lMDUzNTItZjE0OC00MGEwLTg3YTQt
ZTk3MjRhN2E2YmM4LzEvd0FyOWw4RHpWS2RGY0dxSmtSRU9YRmZkOERZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZC9lMDUzNTItZjE0OC00MGEwLTg3YTQtZTk3MjRhN2E2YmM4
LzEvYlhRLTFqNkdqdlVQYllUQUFEcURTRF9HS2dNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHEBggrBgEFBQcBBwEB/wSBtDCBsTCBnwQCAAEwgZgDBAU+
zYADBAFegwADBABegwQDBAFegwYDBAFeg3wDBABeg38DBAFfpAwDBABfpA8DBABf
pBQDBAJfpCgwDAMEAF+kMQMEAF+kMjAMAwQCX6Q0AwQCX6Q4MAwDBANfpEgDBABf
pEwDBAJfpFADBABfpFoDBAJfpHgwDAMEAV+kqgMEBF+koAMEAV+k+AMEAF+k+wME
A8PW0DANBAIAAjAHAwUAKgEA0DANBgkqhkiG9w0BAQsFAAOCAQEAIGfE781v+2zF
hG+nDR98pSlOb49KEktx7JgWPvHWwthnMpdkZ8xuXixfKnuMwYCDJYoRNSMEEn1f
Q7k7UqqajoWLk7zo67UAKNSvsB97dxYKMWRxruemgEgY1bTccLB921xgZ6HRJViP
L+bQpi2wyKwfeV4RucKzFYDYbATtrtKUS7RKBgeFlD8wvMl0ZglZkp4ApT05eEx7
skbmq3g0YFLZPBPs1LYQC401QQVY9xGMQeJBhXCoD7hiWk/Jggkrc5Hxn0HKkvbp
y/t6CNbSdbzcYB3lZBmuEFoRgV8l5dptdqDAHj7PE0p3G7Ht2Ra7Ppvz4ABSrRkK
5i9qg+JPfQ==
-----END CERTIFICATE-----
Generated at Sun Apr 6 09:40:24 2025 by rpki-client